Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-2273

Опубликовано: 15 июн. 2010
Источник: ubuntu
Приоритет: low
EPSS Средний
CVSS2: 4.3

Описание

Multiple cross-site scripting (XSS) vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to dojo/resources/iframe_history.html, dojox/av/FLAudio.js, dojox/av/FLVideo.js, dojox/av/resources/audio.swf, dojox/av/resources/video.swf, util/buildscripts/jslib/build.js, and util/buildscripts/jslib/buildUtil.js, as demonstrated by the (1) dojoUrl and (2) testUrl parameters to util/doh/runner.html.

РелизСтатусПримечание
dapper

DNE

devel

not-affected

hardy

DNE

jaunty

DNE

karmic

DNE

lucid

not-affected

upstream

released

1.4.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 97%
0.43247
Средний

4.3 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2010-2273

nvd
больше 15 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to dojo/resources/iframe_history.html, dojox/av/FLAudio.js, dojox/av/FLVideo.js, dojox/av/resources/audio.swf, dojox/av/resources/video.swf, util/buildscripts/jslib/build.js, and util/buildscripts/jslib/buildUtil.js, as demonstrated by the (1) dojoUrl and (2) testUrl parameters to util/doh/runner.html.

debian логотип

CVE-2010-2273

debian
больше 15 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Dojo 1.0.x befo ...

github логотип

GHSA-536q-8gxx-m782

github
больше 6 лет назад

Cross-Site Scripting in dojo

EPSS

Процентиль: 97%
0.43247
Средний

4.3 Medium

CVSS2